-
Bug
-
Resolution: Unresolved
-
Undefined
-
rhel-8.10
-
None
-
No
-
Low
-
rhel-security-compliance
-
ssg_security
-
None
-
False
-
False
-
-
None
-
Red Hat Enterprise Linux
-
None
-
None
What were you trying to do that didn't work?
A customer is trying to scan a system through Satellite and needs to download locally the additionally XML files.
Despite specifying --local-files <dir>, the warning on remote resources is printing and strace shows that no local file is even searched for at all.
# strace -fttTvyy -s 128 -o o.strace -- oscap xccdf eval --local-files /root/resources --profile xccdf_org.ssgproject.content_profile_cis_customized --tailoring-file ./250a6a12df56e12e1e884a60ae5a2d3e7c0778752f05108517824eaef23d70f3.xml --results-arf /root/results.xml ./cbe486454b7006c73d360a8ca347ecf14aa97456e137de1876a2637292a886a2.xml | head -2 WARNING: This content points out to the remote resources. Use `--fetch-remote-resources' option to download them. WARNING: Skipping https://access.redhat.com/security/data/oval/v2/RHEL8/rhel-8.oval.xml.bz2 file which is referenced from XCCDF content --- Starting Evaluation --- # grep "/root/resources" o.strace 1851 09:21:13.495150 execve("/usr/bin/oscap", ["oscap", "xccdf", "eval", "--local-files", "/root/resources", "--profile", "xccdf_org.ssgproject.content_profile_cis_customized", "--tailoring-file", "./250a6a12df56e12e1e884a60ae5a2d3e7c0778752f05108517824eaef23d70f3.xml", "--results-arf", "/root/results.xml", "./cbe486454b7006c73d360a8ca347ecf14aa97456e137de1876a2637292a886a2.xml"], ...) = 0 <0.000071>
What is the impact of this issue to you?
Cannot scan a system properly.
Please provide the package NVR for which the bug is seen:
openscap-scanner-1.3.10-2.el8_9.x86_64
How reproducible is this bug?:
Always with privately attached files (xml.tar.gz.
